Remote Access Vulnerability in Apple OS X Server Wiki
CVE-2015-1151

Currently unrated

Key Information:

Vendor: Apple
Status: Os X Server
Vendor: CVE Published:; 28 April 2015

What is CVE-2015-1151?

A security flaw in the Wiki Server component of Apple OS X Server prior to version 4.1 allows attackers to bypass restrictions on Activity and People pages when connecting from an iPad client. This vulnerability exposes sensitive information to unauthorized users, potentially compromising user privacy and data integrity.

References

http://www.securitytracker.com/id/1032196

vdb-entryx_refsource_SECTRACK

https://support.apple.com/HT204201

x_refsource_CONFIRM

http://lists.apple.com/archives/security-announce/2015/Ap...

vendor-advisoryx_refsource_APPLE

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 28, 2015
Vulnerability Reserved
Jan 16, 2015